Description
Jenkins Chaos Monkey Plugin 0.4 and earlier does not perform permission checks in an HTTP endpoint, allowing attackers with Overall/Read permission to access the Chaos Monkey page and to see the history of actions.
Remediation
References
http://www.openwall.com/lists/oss-security/2020/12/03/2
https://www.jenkins.io/security/advisory/2020-12-03/#SECURITY-2109%20%282%29
Related Vulnerabilities
CVE-2018-10237 Vulnerability in maven package com.google.guava:guava
CVE-2021-21350 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2020-7629 Vulnerability in npm package install-package
CVE-2020-2322 Vulnerability in maven package io.jenkins.plugins:chaos-monkey
CVE-2014-0111 Vulnerability in maven package org.apache.syncope:syncope-core